Book a Cybersecurity ASSESSMENT 
Your Website May Be Hacked by Gambling Malware
Campaign Overview A new Gambling Malware is hitting many normal websites by adding harmful JavaScript that pushes Chinese gambling sites. Around 150,000 websites have been affected so far. Security expert Himanshu Anand from c/side mentioned that although the attackers have updated their look a…
0 Comments4 Minutes
New Phishing Service Exposed
Attack Overview Security experts have recently uncovered a new phishing tool available for hire. This service uses DNS mail exchange (MX) records to deliver fake login pages that mimic more than 100 popular brands. You might be interested in: The group behind this scam, nicknamed "Morphing…
0 Comments2 Minutes
Critical Security Update: Next.js 15.2.3 Fixes CVE-2025-29927
Critical Security Update (CVE-2025-29927) Next.js has rolled out version 15.2.3 to address a critical security issue (CVE-2025-29927). This update, along with backported patches for previous versions, is essential for all self-hosted deployments using Middleware with next start and output:…
0 Comments4 Minutes
VSCode Malware and Fake Developer Tools
Harmful VSCode Extensions Spread Early-Stage Ransomware Researchers recently discovered two dangerous extensions in the VSCode Marketplace. Named "ahban.shiba" and "ahban.cychelloworld," these add-ons were designed to launch a piece of ransomware that is still in its testing phase. The marketplace…
0 Comments2 Minutes
Medusa Ransomware on the Rise in 2025 according to the CIA and FBI
Overview The FBI and CISA have recently warned about a growing threat from the Medusa ransomware group. Recent intelligence shows that attacks by this group are happening almost every day this year, with a nearly 45% increase compared to 2024. This surge has prompted government agencies to issue an…
0 Comments3 Minutes
AI Is Not a Toy: A Cybersecurity Guide on AI Dangers and Safe Usage
AI Dangers and Safe Usage Artificial intelligence offers incredible tools—from content creation and photo animation to automating everyday tasks. However, using these tools without proper safeguards can expose you and your organization to serious cybersecurity risks. This guide explores the…
0 Comments15 Minutes
GitHub Actions in Your Workflows Could Leak Data and information
A new security issue has been added to the U.S. Cybersecurity and Infrastructure Security Agency’s (CISA) list of known risks. The problem comes from a flaw in the tj-actions/changed-files GitHub Action that lets hackers sneak in bad code. The vulnerability is marked as CVE-2025-30066 with a high…
0 Comments3 Minutes
A New Wave in Ad Fraud and Botnet Attacks
Overview A new version of a major ad fraud and residential proxy scheme, known as BADBOX 2.0, has emerged, involving at least four different cybercrime groups. This operation has been described as the largest botnet ever found among connected TV devices and similar gadgets. The scheme infects…
0 Comments5 Minutes
CSS exploits in emails are tracking your actions and data.
Introduction Cybercriminals have found a new way to sneak past email filters and secretly monitor user actions by misusing basic CSS exploits. CSS, a tool normally used to add style and structure to web pages, is now being manipulated in emails to hide extra content and gather details about the…
0 Comments4 Minutes
New Phishing Scam Poses as Booking.com to Steal info
Microsoft has uncovered an ongoing Phishing Attack that targets the hospitality industry by posing as the online travel platform Booking.com. The attack, tracked under the name Storm-1865, began in December 2024 and aims to commit financial fraud and data theft. You might be interested in:…
0 Comments6 Minutes
